Qualcomm 芯片信息泄露漏洞

A Qualcomm chip is a chip from Qualcomm Incorporated USA. A way of miniaturizing circuits mainly semiconductor devices, but also passive components, etc., and is often fabricated on the surface of semiconductor wafers. An information disclosure vulnerability exists in several Qualcomm products,...

Denial Of Service (DoS)

apk-tools:edge is vulnerable to denial of service. The vulnerability occurs when numeric strings in the FTP and HTTP protocols are mishandled...

Oracle VirtualBox NAT Numeric Truncation Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Oracle VirtualBox. An attacker must first obtain the ability to execute high-privileged code on the target guest system in order to exploit this vulnerability. The specific flaw exists within the...

Libvips numeric error vulnerability

libvips is an open source 2D image processing library. libvips version 8.10.5 is vulnerable due to a dezero vulnerability in function "vipseyepoint, eye.cL83" and function "vipsmaskpoint, mask.cL85". No detailed vulnerability details are available at this time...

libcontainer/user/user.go in runC before 0.1.0 as used in Docker before 1.11.2 improperly treats a numeric UID as a potential username which allows local users to gain privileges via a numeric username in the password file in a container.

...

Libvips 数字错误漏洞

libvips is an open source 2D image processing library. libvips version 8.10.5 is vulnerable due to a dezero vulnerability in function "vipseyepoint, eye.cL83" and function "vipsmaskpoint, mask.cL85". No detailed vulnerability details are available at this time...

Google TensorFlow Numeric Error Vulnerability

Google TensorFlow is a suite of end-to-end open source platforms for machine learning from Google USA. Google TensorFlow 2.4.2, 2.3.3, 2.2.3, 2.1.4 suffers from a number error vulnerability that can be exploited by an attacker to trigger undefined behavior via a null pointer bound to...

Google TensorFlow Numeric Error Vulnerability (CNVD-2021-48864)

Google TensorFlow is a suite of end-to-end open source platforms for machine learning from Google USA. A number error vulnerability exists in Google TensorFlow 2.4.2, 2.3.3, 2.2.3, 2.1.4, which can be exploited by an attacker to cause a runtime divide-by-zero error and denial of service in...

Denial of Service Vulnerability in Numeric OFD Version Reader

Numeric OFD plate reader is a plate reader product based on our own OFD standard. A denial of service vulnerability exists in Numeric OFD Reader, which can be exploited by attackers to cause a denial of service attack...

The vulnerability of the ReadTXTImage() function in the ImageMagick console graphics editor’s coders/txt.c component allows a malicious actor to cause a service failure due to a numerical overflow of the value being read.

The vulnerability of the ReadTXTImage function in the ImageMagick console graphics editor’s coders/txt.c component is related to a numerical overflow condition. Exploiting this vulnerability allows an attacker to cause a service failure by invoking the TXT file, which requires a very large value ...

tsMuxer Numeric Error Vulnerability

tsMuxer is a transport stream multiplexing and TS encapsulation tool. A numeric error vulnerability exists in tsMuxer version 2.6.16. An attacker can exploit this vulnerability via specially crafted files to cause a denial of service...

Daniel Kamil Kozar tsMuxer 数字错误漏洞

tsMuxer is a transport stream multiplexing and TS encapsulation tool. A numeric error vulnerability exists in tsMuxer version 2.6.16. An attacker can exploit this vulnerability via specially crafted files to cause a denial of service...

Microsoft Windows NTFS 数字错误漏洞

Microsoft Windows NTFS is a file system from Microsoft USA that serves computer files. The file system has error warning, disk self-repair, and logging capabilities. A numeric error vulnerability exists in Windows NTFS. The following products and versions are affected:Windows 10 Version 1809 for...

GNOME security, bug fix, and enhancement update

accountsservice 0.6.55-1 - Rebase to 0.6.55 Resolves: 1846376 atkmm 2.24.2-7 - Rebuild for annobin fixes - Resolves: rhbz1703969 cairomm 1.12.0-8 - Rebuild for the annobin fixes - Resolves: rhbz1703971 chrome-gnome-shell 10.1-7 - Disable updates support Resolves: 1802105 dleyna-core 0.6.0-3 - Don...

GHSA-452G-F7FP-9JF7 Type confusion during tensor casts lead to dereferencing null pointers

Impact Calling TF operations with tensors of non-numeric types when the operations expect numeric tensors result in null pointer dereferences. There are multiple ways to reproduce this, listing a few examples here: python import tensorflow as tf import numpy as np data =...

PT-2021-23607 · Softwarex · Softwarex

Name of the Vulnerable Software and Affected Versions: SoftwareX versions prior to 1.1.1 Description: Randomly-generated alphanumeric strings contain significantly less entropy than expected. The RandomAlphaNumeric and CryptoRandomAlphaNumeric functions always return strings containing at least o...

systemd: Mishandles numerical usernames beginning with decimal digits or 0x followed by hexadecimal digits

A flaw was found in systemd, where it mishandles numerical usernames beginning with decimal digits, or "0x" followed by hexadecimal digits. When the usernames are used by systemd, for example in service units, an unexpected user may be used instead. In some particular configurations, this flaw...

Backdoor.Win32.Antilam.14.d Code Execution

Discovery / credits: Malvuln - malvuln.com c 2021 Original source: https://malvuln.com/advisory/a53351e8fa0cb4f7db3d0250387a0e4f.txt Contact: [email protected] Media: twitter.com/malvuln Threat: Backdoor.Win32.Antilam.14.d Vulnerability: Unauthenticated Remote Command Execution Description: The...

PYSEC-2021-150

TensorFlow is an end-to-end open source platform for machine learning. Calling TF operations with tensors of non-numeric types when the operations expect numeric tensors result in null pointer dereferences. The conversion from Python array to C++...

PYSEC-2021-639

TensorFlow is an end-to-end open source platform for machine learning. Calling TF operations with tensors of non-numeric types when the operations expect numeric tensors result in null pointer dereferences. The conversion from Python array to C++...